$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: Qzug9uDqCtX6V1gFv9BP7FSWB+wa+TvmAdjKwmDJiqg= Subject key identifier: AA:6F:AA:24:33:D4:73:5D:72:12:6A:B6:A8:54:64:4A:DF:FD:7D:69 Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 0787 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 0782 Signing time: Wed 14 May 2025 21:29:52 +0000 Manifest this update: Wed 14 May 2025 21:29:52 +0000 Manifest next update: Wed 21 May 2025 21:29:52 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: lIcbRrvOx1v12w6TJ9xVEkR+PAXEJPHN+Vlmq8ou04k=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1927 (0x787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: May 14 21:29:52 2025 GMT Not After : May 21 21:29:52 2025 GMT Subject: CN=68250b50-3444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5a:f8:e4:fe:01:91:f7:5b:ab:66:b7:c7:cc: ee:b9:40:08:fb:b2:e5:e6:06:3d:37:7e:87:da:c0: ae:8c:34:4c:e5:99:7e:b3:d0:04:f4:b8:f0:49:93: e0:0f:9a:ba:d3:7e:f0:ad:03:83:a8:0f:e5:cd:5f: 5e:4c:8d:f4:4b:92:c1:c0:30:3e:76:3c:e5:fa:1c: f9:96:f6:8b:c7:e8:d5:62:76:65:23:13:49:f7:3f: df:8c:a0:e9:b8:60:f6:4b:05:57:28:7c:81:ca:d1: 51:7d:45:d6:1a:2d:e4:93:94:ba:aa:c9:f2:f5:be: 21:ef:96:a2:86:1f:57:11:50:87:d4:02:07:c9:45: 34:7f:de:d4:62:d0:fe:cf:b4:1e:28:44:36:85:ee: d3:fa:b8:68:50:8b:63:80:60:6f:a4:e9:93:6f:04: 03:fe:b8:6b:00:ee:57:25:52:0b:aa:b6:fd:0b:ac: ce:05:a8:34:33:7f:82:6e:9f:c0:65:8a:f5:95:e1: 36:71:0a:5d:41:da:5a:55:42:2a:e4:ae:2a:4c:0c: 01:c9:d8:d8:2f:62:8f:a3:79:19:1f:e0:60:05:b5: f1:4a:30:e3:6b:c3:bb:ce:83:fb:51:a4:12:fd:1a: 48:fb:0c:aa:12:5b:66:d4:cc:c7:e0:a8:03:b8:85: ae:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:6F:AA:24:33:D4:73:5D:72:12:6A:B6:A8:54:64:4A:DF:FD:7D:69 X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:b6:d8:b3:04:1e:60:39:bd:66:11:8a:14:22:81:2a:b7:aa: 9f:c6:50:67:92:80:4a:55:cd:e0:78:42:1c:b0:6f:70:82:52: 94:43:0c:d9:35:93:0c:a5:01:d3:8f:d4:51:b2:2f:8e:19:c9: 9b:c9:7f:5e:03:44:cd:3d:c0:9c:1f:1d:c2:40:d6:5d:4a:87: 88:02:3a:9d:81:ab:00:93:02:4a:62:0b:19:99:e0:74:51:b7: aa:35:d5:d6:11:05:bf:2f:ca:49:83:ab:70:0c:9d:2d:9b:0d: 69:b9:12:86:9d:77:92:69:cc:9a:1c:37:a3:6a:fb:ec:21:e8: 2b:6a:84:ca:c0:7d:11:31:2a:a0:fd:ad:f9:2e:80:f5:12:b4: 61:23:96:fa:d5:19:85:f6:41:2a:24:aa:15:f7:0b:46:50:0d: ba:5a:ed:9b:36:b9:14:19:a0:14:c9:b9:69:9a:bb:6f:9c:3b: be:99:52:0d:00:c7:1e:b8:93:fe:67:36:dd:ad:83:69:3f:22: b6:c1:5c:be:bb:13:de:9b:63:07:b3:04:85:7d:8b:1b:d5:35: d4:5f:ff:f5:51:f3:3d:33:b2:f5:b8:80:77:3d:3e:70:33:86: 95:6a:ae:b5:3c:2f:52:fe:73:7c:70:b9:db:ba:d4:63:76:0e: b1:ba:01:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUwNTE0MjEyOTUyWhcNMjUwNTIxMjEyOTUyWjAYMRYwFAYD VQQDEw02ODI1MGI1MC0zNDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVr45P4Bkfdbq2a3x8zuuUAI+7Ll5gY9N36H2sCujDRM5Zl+s9AE9LjwSZPg D5q6037wrQODqA/lzV9eTI30S5LBwDA+djzl+hz5lvaLx+jVYnZlIxNJ9z/fjKDp uGD2SwVXKHyBytFRfUXWGi3kk5S6qsny9b4h75aihh9XEVCH1AIHyUU0f97UYtD+ z7QeKEQ2he7T+rhoUItjgGBvpOmTbwQD/rhrAO5XJVILqrb9C6zOBag0M3+Cbp/A ZYr1leE2cQpdQdpaVUIq5K4qTAwBydjYL2KPo3kZH+BgBbXxSjDja8O7zoP7UaQS /RpI+wyqEltm1MzH4KgDuIWu/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpvqiQz 1HNdchJqtqhUZErf/X1pMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKttizBB5gOb1mEYoUIoEqt6qfxlBnkoBKVc3geEIcsG9wglKUQwzZ NZMMpQHTj9RRsi+OGcmbyX9eA0TNPcCcHx3CQNZdSoeIAjqdgasAkwJKYgsZmeB0 UbeqNdXWEQW/L8pJg6twDJ0tmw1puRKGnXeSacyaHDejavvsIegraoTKwH0RMSqg /a35LoD1ErRhI5b61RmF9kEqJKoV9wtGUA26Wu2bNrkUGaAUyblpmrtvnDu+mVIN AMceuJP+ZzbdrYNpPyK2wVy+uxPem2MHswSFfYsb1TXUX//1UfM9M7L1uIB3PT5w M4aVaq61PC9S/nN8cLnbutRjdg6xugFI -----END CERTIFICATE-----Generated at Thu May 15 22:37:27 2025 by rpki-client